Panguard Report
Generate compliance reports for ISO 27001, SOC 2, and Taiwan TCSA. Automated evidence collection, AI-generated remediation steps, and bilingual PDF export.
Quick Start
Generate your first compliance report with a single command.
Generate an ISO 27001 compliance report:
panguard report generate --framework iso27001View a quick summary of the latest report:
panguard report summaryList all supported compliance frameworks:
panguard report list-frameworksSupported Frameworks
Three compliance frameworks are supported out of the box. Each maps scan findings to specific controls.
| Framework | Scope | Auto-Coverage | Flag |
|---|---|---|---|
| ISO 27001 | 114 Annex A controls | 92% | --framework iso27001 |
| SOC 2 | 64 Trust Services Criteria | 88% | --framework soc2 |
| Taiwan TCSA | ISMS requirements | 85% | --framework tcsa |
Report Contents
Every generated report includes six sections designed for both technical teams and executive stakeholders.
Executive Summary
High-level overview of security posture, risk score, and key recommendations for stakeholders.
Risk Score
Quantified risk assessment (0-100) with historical trend and comparison to industry benchmarks.
Prioritized Findings
All findings ranked by severity and business impact, with effort estimates for remediation.
Control Mapping
Each finding mapped to specific framework controls (e.g., ISO 27001 A.12.6.1) with compliance status.
Evidence Snapshots
Auto-collected evidence from scan and guard data, timestamped and linked to relevant controls.
Remediation Steps
AI-generated step-by-step fix instructions for each finding, including code examples where applicable.
PDF Export
Export reports as professionally formatted PDF documents ready for stakeholder review.
# Generate and export as PDF panguard report generate --framework soc2 --pdf # Bilingual output (English + Traditional Chinese) panguard report generate --framework iso27001 --pdf --lang en,zh-TW # Include company branding panguard report generate --framework tcsa --pdf --logo ./company-logo.png --company "Acme Corp"
PDF Features
- Auto-generated table of contents with page numbers
- Bilingual support: English and Traditional Chinese (zh-TW)
- Custom company logo and branding on cover page
- Charts and graphs for risk score trends
- Appendix with raw evidence data
Scheduled Reports
Automate report generation on a recurring schedule using cron-based scheduling.
Schedule a weekly SOC 2 report:
panguard report schedule --weekly --framework soc2Schedule a monthly ISO 27001 report with PDF export:
panguard report schedule --monthly --framework iso27001 --pdfCustom cron schedule:
# Every Friday at 18:00 panguard report schedule --cron "0 18 * * 5" --framework soc2 --pdf
List and manage scheduled reports:
panguard report schedule --list panguard report schedule --remove <schedule-id>
Evidence Collection
Panguard automatically collects and timestamps evidence from scan and guard data to support compliance findings.
How Evidence is Collected
- Scan results are stored with timestamps and linked to framework controls
- Guard events provide real-time evidence of detection and response capabilities
- Configuration snapshots document security settings at the time of the report
- Trap intelligence demonstrates proactive threat detection measures
Log Retention by Tier
| Tier | Retention |
|---|---|
| Community | 7 days |
| Solo | 30 days |
| Pro | 90 days |
| Business | 90+ days (configurable) |
CI/CD Integration
Integrate compliance checks into your deployment pipeline with JSON output and exit codes.
Generate a report in JSON format for automated processing:
panguard report generate --framework iso27001 --jsonFail the pipeline if the risk score exceeds a threshold:
# Exit code 1 if risk score > 70 panguard report generate --framework soc2 --json --fail-on-score 70
Example GitHub Actions step:
# .github/workflows/compliance.yml - name: Compliance Check run: | panguard report generate --framework iso27001 --json --fail-on-score 70 env: PANGUARD_API_KEY: ${{ secrets.PANGUARD_API_KEY }}
Get Started
Install Panguard and generate your first compliance report in minutes.